Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,064 advisories

Loading
Django User Enumeration Vulnerability Low
CVE-2016-2513 was published for django (pip) May 17, 2022
MarkLee131
Credited to MarkLee131
Siemens RUGGEDCOM ROS before 4.2.1 allows remote attackers to obtain sensitive information by... Low Unreviewed
CVE-2015-7836 was published May 17, 2022
The AutoFill feature in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and... Low Unreviewed
CVE-2010-1796 was published May 17, 2022
Mozilla Firefox 7.0 and Thunderbird 7.0, when the Direct2D (aka D2D) API is used on Windows in... Low Unreviewed
CVE-2011-3649 was published May 17, 2022
cipher.c in the Cipher API in libpurple in Pidgin before 2.7.10 retains encryption-key data in... Low Unreviewed
CVE-2011-4922 was published May 17, 2022
python-keystoneclient unsecure user password update Low
CVE-2013-2013 was published for python-keystoneclient (pip) May 17, 2022
pioctls in OpenAFS 1.6.x before 1.6.13 allows local users to read kernel memory via crafted... Low Unreviewed
CVE-2015-3284 was published May 17, 2022
IBM Tivoli Storage Manager for Databases: Data Protection for Microsoft SQL Server 7.1 before 7.1... Low Unreviewed
CVE-2015-4949 was published May 17, 2022
The get_bitmap_file function in drivers/md/md.c in the Linux kernel before 4.1.6 does not... Low Unreviewed
CVE-2015-5697 was published May 17, 2022
EMC Documentum Content Server before 7.0 P20, 7.1 before P18, and 7.2 before P02, when RPC... Low Unreviewed
CVE-2015-4536 was published May 17, 2022
The Siemens SIMATIC WinCC Sm@rtClient and Sm@rtClient Lite applications before 01.00.01.00 for... Low Unreviewed
CVE-2015-5084 was published May 17, 2022
The Windows Graphics Device Interface (GDI) in Microsoft Windows Server 2008 SP2 and R2 SP1;... Low Unreviewed
CVE-2017-8676 was published May 17, 2022
IBM Business Process Manager 7.5, 8.0, and 8.5 temporarily stores files in a temporary folder... Low Unreviewed
CVE-2017-1346 was published May 17, 2022
selinux-policy as packaged in Red Hat OpenShift 2 allows attackers to obtain process listing... Low Unreviewed
CVE-2015-0238 was published May 17, 2022
The (1) filesystem::get_wml_location function in filesystem.cpp and (2) is_legal_file function in... Low Unreviewed
CVE-2015-5070 was published May 17, 2022
Skybox Manager Client Application is prone to information disclosure via a username enumeration... Low Unreviewed
CVE-2017-14772 was published May 17, 2022
Exposure of Sensitive Information in Jenkins Datadog plugin Low
CVE-2017-1000114 was published for org.datadog.jenkins.plugins:datadog (Maven) May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue... Low Unreviewed
CVE-2017-7082 was published May 17, 2022
An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves... Low Unreviewed
CVE-2017-7139 was published May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue... Low Unreviewed
CVE-2017-7138 was published May 17, 2022
IBM Daeja ViewONE Professional, Standard & Virtual 4.1.5.1 and 5.0.2 could disclose sensitive... Low Unreviewed
CVE-2017-1211 was published May 17, 2022
Libgcrypt before 1.5.4, as used in GnuPG and other products, does not properly perform ciphertext... Low Unreviewed
CVE-2014-5270 was published May 17, 2022
The (1) pptp_bind and (2) pptp_connect functions in drivers/net/ppp/pptp.c in the Linux kernel... Low Unreviewed
CVE-2015-8569 was published May 17, 2022
CMPXCHG8B emulation in Xen 3.3.x through 4.7.x on x86 systems allows local HVM guest OS users to... Low Unreviewed
CVE-2016-9932 was published May 17, 2022
strongSwan 4.3.0 through 5.x before 5.3.2 and strongSwan VPN Client before 1.4.6, when using EAP... Low Unreviewed
CVE-2015-4171 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database